summaryrefslogtreecommitdiffstats
path: root/meta/recipes-multimedia/libtiff/tiff_4.3.0.bb
diff options
context:
space:
mode:
authorYogita Urade <yogita.urade@windriver.com>2024-01-18 10:54:02 +0000
committerSteve Sakoman <steve@sakoman.com>2024-01-24 04:04:55 -1000
commit410d7bf8cb71ec379c88b60a58cc8f2c1b4091a5 (patch)
tree3b06233248c027d3b40d6da1339d8a4a96ad923e /meta/recipes-multimedia/libtiff/tiff_4.3.0.bb
parentce477b4d6e1fce61b568cd091563d43c1b40bb18 (diff)
downloadpoky-410d7bf8cb71ec379c88b60a58cc8f2c1b4091a5.tar.gz
tiff: fix CVE-2023-6228
CVE-2023-6228: An issue was found in the tiffcp utility distributed by the libtiff package where a crafted TIFF file on processing may cause a heap-based buffer overflow leads to an application crash. References: https://nvd.nist.gov/vuln/detail/CVE-2023-6228 https://gitlab.com/libtiff/libtiff/-/issues/606 (From OE-Core rev: 0730806ae39093b05ce943df1f9f5d0a25a8a673) Signed-off-by: Yogita Urade <yogita.urade@windriver.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
Diffstat (limited to 'meta/recipes-multimedia/libtiff/tiff_4.3.0.bb')
-rw-r--r--meta/recipes-multimedia/libtiff/tiff_4.3.0.bb1
1 files changed, 1 insertions, 0 deletions
diff --git a/meta/recipes-multimedia/libtiff/tiff_4.3.0.bb b/meta/recipes-multimedia/libtiff/tiff_4.3.0.bb
index 11e3818c69..d284100ab2 100644
--- a/meta/recipes-multimedia/libtiff/tiff_4.3.0.bb
+++ b/meta/recipes-multimedia/libtiff/tiff_4.3.0.bb
@@ -47,6 +47,7 @@ SRC_URI = "http://download.osgeo.org/libtiff/tiff-${PV}.tar.gz \
47 file://CVE-2023-1916.patch \ 47 file://CVE-2023-1916.patch \
48 file://CVE-2023-40745.patch \ 48 file://CVE-2023-40745.patch \
49 file://CVE-2023-41175.patch \ 49 file://CVE-2023-41175.patch \
50 file://CVE-2023-6228.patch \
50 " 51 "
51 52
52SRC_URI[sha256sum] = "0e46e5acb087ce7d1ac53cf4f56a09b221537fc86dfc5daaad1c2e89e1b37ac8" 53SRC_URI[sha256sum] = "0e46e5acb087ce7d1ac53cf4f56a09b221537fc86dfc5daaad1c2e89e1b37ac8"